
Research
Malicious npm Packages Impersonate Flashbots SDKs, Targeting Ethereum Wallet Credentials
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
@chainflip/processor
Advanced tools
The codegen utility is very useful in times of network runtime upgrades. In such scenarios, things can break on our end as our backends rely heavily on the events emitted by the state-chain. This utility was written to help us spot new events as well as c
The codegen utility is very useful in times of network runtime upgrades. In such scenarios, things can break on our end as our backends rely heavily on the events emitted by the state-chain. This utility was written to help us spot new events as well as changes in the schemas of the old events so to anticipate and be able to estimate/plan the work.
To be able to run the code generation tool, you first need to find out the new spec version of the network and the block hash at which it occured. Once you have these 2 pieces of information, you need to update the configuration file by adding the new spec verson together with the environment, like so:
{
//...,
"170": {
"hash": "0xd9eeefdbd275bf7466b9d76c810a7ebfb1aab16a68301ee1ab605015c7295e95",
"network": "backspin"
}
}
We just specified that we want to run the codegen for spec version "170" (1.7.0) and the upgrade occured at block hash 0xd9eeefdbd275bf7466b9d76c810a7ebfb1aab16a68301ee1ab605015c7295e95
on the backspin (our devnet) environment.
Once this is done, save the file and run the script.
./scripts/generate.ts
Voila! You should see the auto-generated code inserted in the respective places.
packages/chainspec/metadata/{version}.scale
file.packages/processor/generated/types-{version}.json
file.packages/processor/generated/{version}
folder../scripts/generate.ts
FAQs
The codegen utility is very useful in times of network runtime upgrades. In such scenarios, things can break on our end as our backends rely heavily on the events emitted by the state-chain. This utility was written to help us spot new events as well as c
The npm package @chainflip/processor receives a total of 422 weekly downloads. As such, @chainflip/processor popularity was classified as not popular.
We found that @chainflip/processor demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Four npm packages disguised as cryptographic tools steal developer credentials and send them to attacker-controlled Telegram infrastructure.
Security News
Ruby maintainers from Bundler and rbenv teams are building rv to bring Python uv's speed and unified tooling approach to Ruby development.
Security News
Following last week’s supply chain attack, Nx published findings on the GitHub Actions exploit and moved npm publishing to Trusted Publishers.